Skip to main content

Qes

4 CVEs product

Monthly

CVE-2020-2505 LOW Monitor

If exploited, this vulnerability could allow attackers to gain sensitive information via generation of error messages. Rated low severity (CVSS 2.3), this vulnerability is low attack complexity. No vendor patch available.

Qnap Information Disclosure Qes
NVD
CVSS 3.1
2.3
EPSS
0.3%
CVE-2020-2504 HIGH This Week

If exploited, this absolute path traversal vulnerability could allow attackers to traverse files in File Station. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Path Traversal Qes
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2020-2503 MEDIUM This Month

If exploited, this stored cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Qnap Qes
NVD
CVSS 3.1
5.4
EPSS
0.8%
CVE-2020-2499 HIGH This Week

A hard-coded password vulnerability has been reported to affect earlier versions of QES. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap Authentication Bypass Qes
NVD
CVSS 3.1
7.2
EPSS
1.4%
EPSS 0% CVSS 2.3
LOW Monitor

If exploited, this vulnerability could allow attackers to gain sensitive information via generation of error messages. Rated low severity (CVSS 2.3), this vulnerability is low attack complexity. No vendor patch available.

Qnap Information Disclosure Qes
NVD
EPSS 1% CVSS 7.5
HIGH This Week

If exploited, this absolute path traversal vulnerability could allow attackers to traverse files in File Station. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Path Traversal Qes
NVD
EPSS 1% CVSS 5.4
MEDIUM This Month

If exploited, this stored cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Qnap Qes
NVD
EPSS 1% CVSS 7.2
HIGH This Week

A hard-coded password vulnerability has been reported to affect earlier versions of QES. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap Authentication Bypass Qes
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy